For Libraries For Publication Open Access Downloads About Us Contact Us
Paper Titles
Metrics on Software Structure Based on Structural Features in Software Network
p.3260
Data Parallel and Scheduling Mechanism Based on Petri Nets
p.3264
Design and Construction on Music Online Website
p.3268
Japanese Corpus Build Based on the Technology of Computer to Work and Applications
p.3272
Security Problem Modeling of Database Connection Pool
p.3276
Research on the Construction of SaaS-Based Network Publicity Support Platform
p.3280
Research on the Security Audit of Database Connection Pool
p.3286
Framework Design for RFID Middleware
p.3290
The Design and Implementation of Micro-Blog User Interest Search Engine Base on Cloud Computing Technology
p.3294

Security Problem Modeling of Database Connection Pool

Article Preview

Abstract:

Connection pool is widely used in 3 tiers Web system based on database. It can improve performance of the Web system, but brings security problem to the system at the same time. The formal model of 3 tiers Web system is proposed, and the root of security problem, absence of subject transmission from Web application to database management system, is found from the model. In addition, several methods to solve the security problem faced by database connection pool in 3 tiers Web system are introduced or proposed.

You might also be interested in these eBooks
Vehicle, Mechatronics and Information Technologies II View Preview

Info:

Periodical:

Applied Mechanics and Materials (Volumes 543-547)

Pages:

3276-3279

DOI:

https://doi.org/10.4028/www.scientific.net/AMM.543-547.3276

Citation:

Cite this paper

Online since:

March 2014

Authors:

Bao Hua Huang*, Tian Jing Wang, Yan Ma, Feng Jiang

Keywords:

Connection Pool, Database, Security

Export:

RIS, BibTeX

Price:

Permissions CCC:

Request Permissions

Permissions PLS:

Request Permissions

Сopyright:

© 2014 Trans Tech Publications Ltd. All Rights Reserved

Share:

Citation:

* - Corresponding Author

References

[1] D. A. Hayes, M. Welzl, G. Armitage and M. Rossi. Improving HTTP performance using stateless, TCP: the 21st international workshop on Network and operating systems (2011), p.57.

DOI: 10.1145/1989240.1989256

Google Scholar

[2] Information on http: /en. wikipedia. org/wiki/Connection_pool.

Google Scholar

[3] B. Huang, T. Xie and Y. Ma. Anti SQL Injection with Statements Sequence Digest: the Spring World Congress on Engineering and Technology (2012), p.563.

DOI: 10.1109/scet.2012.6341889

Google Scholar

[4] B. Rozenberg, Y. Gonen, E. Gudes, N. Gal-Oz and E. Shmueli. Tracking End-Users in Web Databases: the 5th International Conference on Network and System Security (2011), p.105.

DOI: 10.1109/icnss.2011.6059966

Google Scholar

[5] B. Huang, Y. Ma and F. Jiang. Research on the Security Audit of Database Connection Pool: International Conference on Intelligent System, Applied Materials and Control Technology (2014).

Google Scholar

[6] Information on http: /www. oracle. com/technetwork/java/javase/jdbc/index. html#corespec30.

Google Scholar

[7] Information on http: /www. mchange. com/projects/c3p0.

Google Scholar

© 2025 Trans Tech Publications Ltd. All rights are reserved, including those for text and data mining, AI training, and similar technologies. For open access content, terms of the Creative Commons licensing CC-BY are applied.
Scientific.Net is a registered trademark of Trans Tech Publications Ltd.